Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1139
Views
0
Helpful
7
Replies

Port monitoring

msteiner
Level 1
Level 1

‎05-24-2007 10:06 AM - edited ‎03-05-2019 04:17 PM

Hi,

I have a network analyzer connect to a port on my 3550 switch, which I can access remotely via the web. When I configure the port for port monitoring, I can no longer access the network analyzer application via the web.

These are the commands I have entered to enable port monitoring:

no monitor session 1

monitor session 1 source interface fastethernet 0/32

monitor session 1 destination interface fastethernet 0/43

Port 0/43 is configured as follows:

interface FastEthernet0/43

description network analyzer

switchport access vlan 10

no ip address

duplex full

speed 100

no mdix auto

spanning-tree portfast

Is it not possible to connect to the PC ip address once port monitoring is enabled?

Thanks,

Mary

Labels:
0 Helpful
7 Replies 7

ankbhasi
Cisco Employee
Cisco Employee

‎05-24-2007 10:17 AM

Hi Mary,

Once you configure some port as destination monitor port the port goes into monitoring state and will only receive sniff packets from source monitor port.

If you want this destination port to also participate in network while capturing traffic enable a keyword "ingress" something like this

monitor session 1 destination interface fastethernet0/43 ingress vlan 10

To read more about ingress functionality read this link

http://www.cisco.com/univercd/cc/td/doc/product/lan/c3550/12120ea2/3550scg/swspan.htm#wp1218090

Try this and update if it worked.

HTH

Ankur

*Pls rate all helpfull post

0 Helpful

msteiner
Level 1
Level 1
In response to ankbhasi

‎05-24-2007 10:28 AM

Hi Ankur,

No, that didn't work. Does it matter if the port I am trying to monitor is on a different vlan than the destination port?

Mary

0 Helpful

ankbhasi
Cisco Employee
Cisco Employee
In response to msteiner

‎05-24-2007 10:52 AM

Hi Mary,

It does not matter which vlan you are trying to monitor, what matters is that destination port should be configured with same vlan what you specify in span destination ingress vlan.

Is it possible for you to attach "sh run", "sh vlan" and "sh interface fa 0/43" and "sh version"?

Regards,

Ankur

0 Helpful

msteiner
Level 1
Level 1
In response to ankbhasi

‎05-24-2007 11:14 AM

Ankur,

Here is the info...

Mary

Preview file
9 KB
0 Helpful

ankbhasi
Cisco Employee
Cisco Employee
In response to msteiner

‎05-24-2007 11:21 AM

Hi Mary,

All look good to me ..

Can you just add this line on your interfaces fa0/43 & interface fa0/32

switchport mode access

Also where you have configured monitored destination port from that config remove untagg keyword and let only this command be there

monitor session 1 destination interface Fa0/43 ingress vlan 10

If this does not work I will do some research and get back to you tomorrow on the same.

Regards,

Ankur

0 Helpful

msteiner
Level 1
Level 1
In response to ankbhasi

‎05-24-2007 11:36 AM

Ankur,

What will the switchport mode access line do?

Also, how do I remore the untagged keyword?

Thanks,

Mary

0 Helpful

ankbhasi
Cisco Employee
Cisco Employee
In response to msteiner

‎05-24-2007 10:07 PM

Hi Mary,

Its working for me on my switch so I believe it should also work for you.

The "switchport mode access" will put this interface in an access port as bydefault all ports are in dynamic desirable mode and try to form a trunk sending DTP packets.

Just run the same command with "no" keyword and then run again same command removing untagg keyword. The interface status will still show you monitoring but you should be able to ping your machine connected to your destination port.

HTH

Ankur

*Pls rate all helpfull post

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card